User Guide : 10. Administering Users, Groups, Roles, and Profiles : Modifying Users, Groups, Roles, or Profiles : Modify a Role
 
Share this page                  
Modify a Role
You modify user roles using the Modify Role dialog (see Role Dialog). You can access this dialog in any of the ways explained in that topic.
To modify a role
1. In the Instance Explorer, open the Security folder for a connected installation.
2. Open the Roles folder, right-click a role node, and select Modify on the context menu.
The Modify Role dialog opens.
Set general options:
1. In the “Select a page” portlet, click General.
General options are displayed on the right side of the dialog. For more information, see General Page (Role).
2. Specify how the user’s password should be authenticated.
The first time the DBMS option is selected for a role, a warning message appears.
3. (Optional) If DBMS authentication is selected and you want to change the password, click Change Password.
The Change Password dialog opens.
Enter and confirm the new password for the role, then click OK.
A message is displayed, indicating that the password will not be changed until you save changes by clicking OK on the Modify Role dialog.
Set privileges:
1. In the “Select a page” portlet, click Privileges.
Privilege settings are displayed on the right side of the dialog. For more information, see Privileges Page (Role).
2. Set the requested and default permissions for users in this role.
Select grantees:
1. In the “Select a page” portlet, click Grantees.
Users are displayed on the right side of the dialog. For more information, see Grantees Page (Role).
2. Select or clear the users you want assigned to this role.
Set access options:
1. In the “Select a page” portlet, click Access.
Access settings are displayed on the right side of the dialog. For more information, see Access Page (Role).
2. Select the non-granted databases user in this role should have access to.
Set miscellaneous options:
1. In the “Select a page” portlet, click Options.
Miscellaneous settings are displayed on the right side of the dialog. For more information, see Options Page (Role).
2. Specify whether security auditing is enabled for all events and query text.
Save your changes:
Click OK to save your changes.
You can also assign roles to users from the Roles page of the User dialog (see Roles Page (User)). You can also grant or revoke roles for multiple users (see Grant or Revoke Roles for Multiple Users).
Grant or Revoke Roles for Multiple Users
You can grant or revoke multiple users from any role with the Grant/Revoke Roles dialog. This dialog has the following options:
Grant or Revoke
Specifies the operation to apply to the roles and users you specify
Roles
Lists all available roles in the installation
Users
Lists all available users in the installation
You can access this dialog in the Instance Explorer in the following ways:
From the Roles folder context menu: Grant/Revoke
From an existing role node context menu: Grant/Revoke
To grant or revoke roles
1. In the Instance Explorer, open the Grant/Revoke roles dialog in one of the ways explained previously.
If you opened the dialog from an existing role node, that role is selected in the Roles pane. However, no other existing assignments are reflected on the dialog.
2. Select whether you want to grant or revoke roles.
3. Select the roles you want to grant or revoke.
4. Select the users to which you want to apply the role changes.
5. Click OK to apply your changes.
You can also grant or revoke roles for individual users. For more information, see Modify a User.